← Government of Turkey, Kamu Sertifikasyon Merkezi (Kamu SM) cases
Bugzilla #1390998
Policy Compliance
Kamu SM: Non-BR-Compliant Certificate Issuance
RESOLVED
FIXED
Government of Turkey, Kamu Sertifikasyon Merkezi (Kamu SM)
AI Summary
The Government of Turkey's CA, Kamu Sertifikasyon Merkezi (Kamu SM), faced issues with non-BR-compliant certificate issuance, specifically related to serial numbers with less than 64-bit entropy. The CA acknowledged the problem and committed to ceasing the issuance of problematic certificates. They provided a remediation plan, including transitioning to a new root that complies with the requirements. The CA also expressed challenges in communicating with mobile operating systems for root inclusion, which contributed to the situation. The case has been resolved with the CA implementing corrective measures.
Chronology
- Initial report of non-compliance issues.
- CA acknowledged non-compliance to Microsoft Trusted Root Program.
- Case marked as resolved.
Participants
Kathleen Wilson
Tuğba ÖZCAN
Ryan Sleevi
Jonathan Rudenberg
External References
Similar Local Cases
Entrust: Non-BR-Compliant Certificate Issuance
Actalis: Non-BR-Compliant Certificate Issuance
Izenpe: Non-BR-Compliant Certificate Issuance
SwissSign: Non-BR-Compliant Certificate Issuance
GoDaddy: Non-BR-Compliant Certificate Issuance
SECOM: Non-BR-Compliant Certificate Issuance
QuoVadis: Non-BR-Compliant Certificate Issuance
Staat der Nederlandend / PKIoverheid: Non-BR-Compliant Certificate Issuance